Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 21-10-2019 Gestart door Gebruiker (21-10-2019 17:46:40) Gestart vanaf C:\Users\Gebruiker\Desktop Windows 10 Home Versie 1803 17134.1069 (X64) (2018-05-18 23:36:44) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-458893496-2124949986-195690109-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-458893496-2124949986-195690109-503 - Limited - Disabled) Gast (S-1-5-21-458893496-2124949986-195690109-501 - Limited - Disabled) Gebruiker (S-1-5-21-458893496-2124949986-195690109-1001 - Administrator - Enabled) => C:\Users\Gebruiker WDAGUtilityAccount (S-1-5-21-458893496-2124949986-195690109-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Bitdefender Antivirus (Enabled - Up to date) {0E17DB7D-A20F-62CE-B95B-17DB0CDFE318} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Bitdefender Antispyware (Enabled - Up to date) {B5763A99-8435-6D40-83EB-2CA97758A9A5} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) µTorrent (HKU\S-1-5-21-458893496-2124949986-195690109-1001\...\uTorrent) (Version: 3.5.5.45231 - BitTorrent Inc.) Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.021.20048 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.270 - Adobe) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.) Belgium e-ID middleware 4.4.4 (build 3838) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A73838}) (Version: 4.4.3838 - Belgian Government) Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.25.1378 - Bitdefender) Bitdefender Antivirus Plus (HKLM\...\Bitdefender) (Version: 22.0.1.1 - Bitdefender) Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - ) Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data (HKLM-x32\...\Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data) (Version: - ) Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data (HKLM-x32\...\Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data) (Version: - ) Canon Easy-PhotoPrint Pro (HKLM-x32\...\Easy-PhotoPrint Pro) (Version: - ) Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: - ) Canon MG6100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6100_series) (Version: - ) Canon MP Navigator EX 4.0 (HKLM-x32\...\MP Navigator EX 4.0) (Version: - ) Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - ) Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform) CD-LabelPrint (HKLM-x32\...\MediaNavigation.CDLabelPrint) (Version: - ) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0195 - Disc Soft Ltd) D-Link Wireless G DWL-G122_DWA-110 (HKLM-x32\...\{5F753314-628E-4C13-B8AE-BFA7FD514CBE}) (Version: - D-Link) Free Video To MP3 Converter (HKLM-x32\...\Free Video To MP3 Converter_is1) (Version: 5.1.6.215 - Digital Wave Ltd) Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.1.79.613 - Digital Wave Ltd) Gebruikersregistratie voor Canon MG6100 series (HKLM-x32\...\Gebruikersregistratie voor Canon MG6100 series) (Version: - ) GiliSoft Youtube Video Downloader (HKLM-x32\...\{F7F87D0F-81E6-D85A-FE3C-5C2ADCA92479}_is1) (Version: 1.0.0 - GiliSoft International LLC.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.120 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation) Java 8 Update 171 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180171F0}) (Version: 8.0.1710.11 - Oracle Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-458893496-2124949986-195690109-1001\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) NVIDIA 3D Vision controllerstuurprogramma 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA 3D Vision stuurprogramma 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation) NVIDIA GeForce Experience 3.0.5.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.0.5.22 - NVIDIA Corporation) NVIDIA Grafisch stuurprogramma 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation) NVIDIA HD Audio-stuurprogramma 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation) NVIDIA PhysX Systeem Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.0.5.22 - NVIDIA Corporation) Hidden NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 1.0.0.0 - NVIDIA Corporation) Hidden Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0310 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.0.5.22 - NVIDIA Corporation) Hidden SoulseekQt versie 2017.2.20 (HKLM-x32\...\{8A4E1646-488C-4E5B-AC31-F784400E8D2D}_is1) (Version: 2017.2.20 - Soulseek LLC) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden WD Discovery (HKLM-x32\...\WDDiscovery) (Version: 1.3.329 - Western Digital Technologies, Inc.) WD Drive Utilities (HKLM-x32\...\{2db219ff-e483-403b-9374-aea609abaf1d}) (Version: 1.4.3.13 - Western Digital Technologies, Inc.) Hidden WD Drive Utilities (HKLM-x32\...\{546D15D7-D6AF-422B-B4E5-05AF20BA8573}) (Version: 1.4.3.13 - Western Digital Technologies, Inc.) Hidden WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) Zoom (HKU\S-1-5-21-458893496-2124949986-195690109-1001\...\ZoomUMX) (Version: 4.4 - Zoom Video Communications, Inc.) Packages: ========= Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.150.300.0_x86__kgqvnymyfvs32 [2019-10-17] (king.com) Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.8.0.1_neutral__6e5tt8cgb93ep [2019-05-23] (Canon Inc.) Mail en Agenda -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-25] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad] Microsoft News: Gratis nieuws app voor België -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-05] (Microsoft Studios) [MS Ad] Microsoft Telefoon -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2018-09-08] (Microsoft Corporation) Microsoft Telefoonassistent -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-02-13] (Microsoft Corporation) MSN financiën -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-19] (Microsoft Corporation) [MS Ad] MSN sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-19] (Microsoft Corporation) [MS Ad] MSN weer -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad] Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6723984 2010-01-21] (Microsoft Corporation -> Microsoft Corporation) ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4222864 2010-01-21] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (gefilterd) ================== ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ShortcutWithArgument: C:\Users\Gebruiker\Desktop\Burn Video to DVD.lnk -> C:\Program Files (x86)\GiliSoft\Youtube Video Downloader\downloadapp.exe () -> hxxp://download.gilisoft.com/gs/movie-dvd-creator.exe "Movie DVD Creator" "GiliSoft.com" ShortcutWithArgument: C:\Users\Gebruiker\Desktop\Convert Video.lnk -> C:\Program Files (x86)\GiliSoft\Youtube Video Downloader\downloadapp.exe () -> hxxp://download.gilisoft.com/gs/video-converter.exe "Video Converter" "GiliSoft.com" ShortcutWithArgument: C:\Users\Gebruiker\Desktop\Edit Video.lnk -> C:\Program Files (x86)\GiliSoft\Youtube Video Downloader\downloadapp.exe () -> hxxp://download.gilisoft.com/gs/video-editor.exe "Video Editor" "GiliSoft.com" ShortcutWithArgument: C:\Users\Gebruiker\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default ==================== Geladen Modules (gefilterd) ============== 2016-09-20 18:49 - 2009-06-01 14:23 - 000315392 _____ () [Bestand niet getekend] C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIOApi.dll 2016-09-20 18:49 - 2009-06-01 14:23 - 000315392 _____ () [Bestand niet getekend] C:\Program Files (x86)\D-Link\DWL-G122_DWA-110\ANIOApi.dll 2019-05-31 21:11 - 2019-05-31 21:11 - 001877504 _____ () [Bestand niet getekend] C:\Program Files (x86)\Western Digital\Discovery\Current\ffmpeg.dll 2017-01-30 22:03 - 2010-04-08 14:44 - 000023552 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files (x86)\Canon\Solution Menu EX\LangInfo\NL\CNSELANG.dll 2017-01-30 21:54 - 2010-03-28 19:50 - 000067072 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files\Canon\MyPrinter\BJMyRes.dll 2017-01-30 21:54 - 2010-03-24 19:50 - 000113152 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files\Canon\MyPrinter\cnmpu.dll 2017-01-30 21:40 - 2010-02-05 03:37 - 000327680 _____ (CANON INC.) [Bestand niet getekend] C:\WINDOWS\System32\CNMN6PPM.DLL 2017-01-30 22:03 - 2010-01-25 15:09 - 001093120 _____ (Microsoft Corporation) [Bestand niet getekend] C:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL 2019-05-31 21:11 - 2019-05-31 21:12 - 015029760 _____ (Node.js) [Bestand niet getekend] C:\Program Files (x86)\Western Digital\Discovery\Current\node.dll 2018-05-19 01:28 - 2017-10-27 18:06 - 000874368 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Bestand niet getekend] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll 2018-05-19 01:29 - 2017-10-27 18:06 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Bestand niet getekend] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.) AlternateDataStreams: C:\Users\Gebruiker\Downloads\T-MSX6DEUC_2001.0.exe:BDU [0] AlternateDataStreams: C:\Users\Gebruiker\Downloads\T-VAL6DEUC_1017.0(1).exe:BDU [0] AlternateDataStreams: C:\Users\Gebruiker\Downloads\T-VAL6DEUC_1017.0.exe:BDU [0] AlternateDataStreams: C:\Users\Gebruiker\Downloads\uTorrent.exe:BDU [0] ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Bestandskoppeling (gefilterd) =============== ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.) ==================== Hosts inhoud: =============================== (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2015-10-30 09:24 - 2019-10-21 16:59 - 000000000 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-458893496-2124949986-195690109-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{8BA0F889-B308-40BB-9565-6608841E5906}] => (Allow) C:\Users\Gebruiker\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{A19FD6CB-67F9-4CB6-801A-6593FC3C8B56}] => (Allow) C:\Users\Gebruiker\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{D18CD8DC-AF62-4702-B5B8-1E1561384999}] => (Allow) C:\Users\Gebruiker\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{129B9B42-24D7-4199-8FE2-0A63817C1DE7}] => (Allow) C:\Users\Gebruiker\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{7BA2CF72-BAC4-499B-8D17-193811323F4C}] => (Allow) C:\Users\Gebruiker\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{D0915377-3796-4BFD-B8F3-CB5144913853}] => (Allow) C:\Users\Gebruiker\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{C1F1C75F-A951-434B-9319-E09FC65E0F3D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{A878B25B-B17B-4875-A262-9CFC3AFCA0A3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{0E5C8BBC-973A-40C5-AB82-3E91D869F70B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{B64DF654-4FA2-4D8F-83E5-256BD7C460E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{7FD89A7D-874C-4DBC-B232-C6B9E68DB42D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{CD915477-AE07-492B-88D6-5807716EA9D5}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe () [Bestand niet getekend] FirewallRules: [UDP Query User{5F5F8429-F7C5-47C4-9317-D99BB6ABDC56}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe () [Bestand niet getekend] FirewallRules: [{84E1D3FD-80CB-447E-9CE2-3E72899913ED}] => (Allow) C:\Users\Gebruiker\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{F0E92EB0-046A-4E31-9731-74E2AA900AB6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Herstelpunten ========================= ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (10/21/2019 05:06:00 PM) (Source: ESENT) (EventID: 467) (User: ) Description: svchost (3632,D,23) SRUJet: Database C:\WINDOWS\system32\SRU\SRUDB.dat: Index UserIdTimeStamp van tabel {973F5D5C-1D90-4944-BE8E-24B94231A174} is beschadigd (0). Error: (10/21/2019 04:05:00 PM) (Source: ESENT) (EventID: 467) (User: ) Description: svchost (3632,D,23) SRUJet: Database C:\WINDOWS\system32\SRU\SRUDB.dat: Index UserIdTimeStamp van tabel {973F5D5C-1D90-4944-BE8E-24B94231A174} is beschadigd (0). Error: (10/21/2019 03:04:00 PM) (Source: ESENT) (EventID: 467) (User: ) Description: svchost (3632,D,23) SRUJet: Database C:\WINDOWS\system32\SRU\SRUDB.dat: Index UserIdTimeStamp van tabel {973F5D5C-1D90-4944-BE8E-24B94231A174} is beschadigd (0). Error: (10/21/2019 02:03:00 PM) (Source: ESENT) (EventID: 467) (User: ) Description: svchost (3632,D,23) SRUJet: Database C:\WINDOWS\system32\SRU\SRUDB.dat: Index UserIdTimeStamp van tabel {973F5D5C-1D90-4944-BE8E-24B94231A174} is beschadigd (0). Error: (10/21/2019 01:02:00 PM) (Source: ESENT) (EventID: 467) (User: ) Description: svchost (3632,D,23) SRUJet: Database C:\WINDOWS\system32\SRU\SRUDB.dat: Index UserIdTimeStamp van tabel {973F5D5C-1D90-4944-BE8E-24B94231A174} is beschadigd (0). Error: (10/21/2019 12:01:00 PM) (Source: ESENT) (EventID: 467) (User: ) Description: svchost (3632,D,23) SRUJet: Database C:\WINDOWS\system32\SRU\SRUDB.dat: Index UserIdTimeStamp van tabel {973F5D5C-1D90-4944-BE8E-24B94231A174} is beschadigd (0). Error: (10/21/2019 11:00:00 AM) (Source: ESENT) (EventID: 467) (User: ) Description: svchost (3632,D,23) SRUJet: Database C:\WINDOWS\system32\SRU\SRUDB.dat: Index UserIdTimeStamp van tabel {973F5D5C-1D90-4944-BE8E-24B94231A174} is beschadigd (0). Error: (10/21/2019 10:00:29 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'C:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL' niet maken. Kan afhankelijke assembly Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Systeemfouten: ============= Error: (10/21/2019 04:59:18 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-AH7O79P) Description: De server {659CDEA7-489E-11D9-A9CD-000D56965251} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (10/21/2019 04:57:20 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: De service Background Intelligent Transfer Service is gestopt met de volgende specifieke servicefout: Niet nader omschreven fout Error: (10/21/2019 04:57:20 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY) Description: Kan de BITS-service niet starten. Fout 2147500037. Error: (10/21/2019 04:57:08 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-AH7O79P) Description: De server {659CDEA7-489E-11D9-A9CD-000D56965251} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (10/21/2019 04:55:10 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: De service Background Intelligent Transfer Service is gestopt met de volgende specifieke servicefout: Niet nader omschreven fout Error: (10/21/2019 04:55:10 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY) Description: Kan de BITS-service niet starten. Fout 2147500037. Error: (10/21/2019 04:54:58 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-AH7O79P) Description: De server {659CDEA7-489E-11D9-A9CD-000D56965251} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (10/21/2019 04:53:00 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: De service Background Intelligent Transfer Service is gestopt met de volgende specifieke servicefout: Niet nader omschreven fout CodeIntegrity: =================================== Date: 2019-10-21 09:59:37.441 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\bdservicehost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-10-21 09:49:14.137 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\WINDOWS\System32\win32kfull.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-10-21 09:49:13.452 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-10-21 08:19:45.630 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\bdservicehost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-10-21 08:19:37.839 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-10-21 08:19:36.953 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\WINDOWS\System32\drivers\rdbss.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-10-21 08:19:36.436 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\WINDOWS\System32\drivers\dxgkrnl.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-10-21 07:50:05.195 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\bdservicehost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Geheugen info =========================== BIOS: American Megatrends Inc. V1.10 03/01/2011 Moederbord: MSI P55M-GD45 (MS-7588) Processor: Intel(R) Core(TM) i5 CPU 750 @ 2.67GHz Percentage geheugen in gebruik: 50% Totaal fysiek RAM-geheugen: 4087.01 MB Beschikbaar fysiek RAM-geheugen: 2024.25 MB Totaal Virtueel geheugen: 4791.01 MB Beschikbaar Virtueel geheugen: 2626.37 MB ==================== Schijven ================================ Drive c: () (Fixed) (Total:231.57 GB) (Free:39.75 GB) NTFS Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:516.84 GB) NTFS \\?\Volume{0d85b779-0000-0000-0000-100000000000}\ (Door systeem gereserveerd) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS \\?\Volume{0d85b779-0000-0000-0000-90033a000000}\ () (Fixed) (Total:0.83 GB) (Free:0.45 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 0D85B779) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=231.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=848 MB) - (Type=27) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 0D8D6873) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Einde van Addition.txt ============================